Identity management and information security news for the week of August 19; Updates from Cerby, SailPoint, Transmit Security, etc.


The editors of Solutions Review curated this list of the most notable identity management and information security news stories for the week of August 19. This curated list includes identity and information security providers such as Cerby, Sail Point, transmission securityand more.

Keeping tabs on all the most relevant identity management and information security news can be a daunting task. Accordingly, our editorial team aims to provide a summary of the top headlines from the past month, in this space. Solutions Review editors will curate news on vendor products, mergers and acquisitions, venture capital funding, talent acquisition, and other notable identity management and security news stories some information.

News of the week of August 19 on identity management and information security

Cerby Announces Successful SOC 2 Type II Security Audit

Cerby, a security platform approach that optimizes security practices while empowering employees and security teams, announced that the company has successfully completed a Type II audit of system and organizational controls ( SOC) 2, produced by Sensiba San Filippo, LLP (SSF). The validation demonstrates that the company prioritizes security controls and the protection of customer data on its platform. A SOC 2 Type II report describes a service company’s systems and whether the controls it has in place to meet SOC criteria are operating effectively over an agreed observation period. Cerby’s SOC 2 Type II report had no noted exceptions and was issued with an “unqualified” audit opinion from SSF.

Read on to find out more.

ManageEngine integrates with Sectigo to automate certificate lifecycle management

manage enginethe enterprise IT management division of Zoho Corporation, announced the integration between its key and certificate lifecycle management solution, Key Manager Plus, and Sectigo, a leading certification authority in the identity security market. A testament to Sectigo’s push for openness and interoperability in the identity, public key infrastructure (PKI) and crypto space, this integration enables IT administrators using Sectigo certificates to seamlessly automate trust the entire certificate lifecycle from a secure central platform.

Read on to find out more.

Keyfactor Named to 2022 Inc. 5000 List for Third Consecutive Year

Key factor, a machine identity and IoT platform for enterprises, was recognized on the 2022 Inc. 5000 list as one of America’s fastest growing private companies. The list represents a unique look at the most successful businesses within the most dynamic segment of the economy: independent businesses. Companies in the 2022 Inc. 5000 are ranked by percentage of revenue growth from 2018 to 2021. To be eligible, companies must have been founded and generating revenue by March 31, 2018. They must be based in the United States , private, for-profit, and independent – not subsidiaries or divisions of other companies – as of December 31, 2021. Minimum income requirement for 2018 is $100,000; the minimum for 2021 is $2 million.

Read on to find out more.

Software developer cracks Hyundai Car Security with Google Search

A developer said he was able to run his own software on his car’s infotainment hardware after discovering that the vehicle manufacturer had secured his system using keys not only known to the public, but also extracted from programming examples. Daniel Feldman, a software engineer based in Minneapolis, Minnesota, wanted to modify the in-car infotainment (IVI) system of his 2021 Hyundai Ioniq SEL. After trying to figure out how to customize the D-Audio2 system firmware updates of the IVI, made by the mobility platform subsidiary of the car manufacturer Hyundai Mobis, and have them accepted by the IVI, Feldman found an unexpected way: via Google.

Read on to find out more.

Thoma Bravo completes the acquisition of SailPoint

SailPoint Technologies Holdings, Inc.., an enterprise identity security provider, announced the completion of its acquisition by Thoma Bravo, a leading software investment firm, in an all-cash transaction valued at approximately $6.9 billions of dollars. The acquisition agreement was previously announced on April 11, 2022 and approved by SailPoint shareholders at the special meeting of shareholders held on June 30, 2022. Upon completion of the acquisition, SailPoint shareholders have the right to receive $65.25 in cash for each share of SailPoint common stock they owned. SailPoint common stock has ceased trading and will be delisted from the New York Stock Exchange.

Read on to find out more.

An experiment showed that the military needs to change its approach to cybersecurity

Two years ago, two Navy information officers decided to attack their own networks – and not just once or twice a year during scheduled exercises, but much more frequently and without warning. Now they are trying to get the rest of the Navy – and the Pentagon – to follow suit. Their experience has shown that frequent, automated red teams reveal which vulnerabilities are the most dangerous, easiest for an attacker to exploit with the greatest impact — information they wouldn’t otherwise have, said Aaron Weis, the Chief Information Officer of the Navy, or CIO. , and Scott Bischoff, the command information officer at the Naval Postgraduate School. And it’s much more efficient than the way the Department of Defense currently manages cybersecurity: with checklists of actions taken, patches implemented, and so on.

Read on to find out more.

DeathStalker mercenaries attack cryptocurrency and exchange companies with VileRat

Kaspersky researchers have published research revealing that hack-for-hire group DeathStalker has updated its evasive “VileRat” toolset to attack cryptocurrency and exchange firms in Bulgaria, Cyprus, Germany, in the Grenadines, Kuwait, Malta, United Arab Emirates and Russia in 2022. Kaspersky has been tracking attack campaigns by the infamous DeathStalker APT since 2018. The group primarily targets law firms and organizations in the financial industry. The threat actor stands out since his attacks do not appear to be politically or financially motivated. Kaspersky researchers believe that DeathStalker acts as a mercenary organization, offering specialized hacking and financial intelligence services.

Read on to find out more.

WestJet Customers Report Data Breach, Personal Information Leak

WestJet customers reported on Wednesday that the Canadian airline’s app had compromised personal information. App users have taken to Twitter to express their concern over the situation, saying that when they logged into the WestJet app they were able to see personal details and account information associated with perfect unknown. WestJet acknowledged the issue on Twitter, saying the issue lasted less than an hour and was resolved by 4:30 p.m. MST. The airline apologized, saying it “continues to actively investigate the cause of this issue”.

Read on to find out more.

Belgian rail company ensures on-time departures and improves safety with HID Global

HIDDEN global, a global leader in trusted identity and RFID tracking solutions, announced that Belgium’s national railway company, NMBS/SNCB, has successfully deployed a real-time location service platform with the beacons Bluetooth Low-Energy (BLE) BEEK from HID to accurately monitor train location and ensure on-time departures. SNCB/SNCB maintains and operates 3,607 kilometers of track and around 30 stations throughout Belgium, with passenger safety and punctual departures being top priorities. Prior to the HID solution, when an approaching train reached a predefined GPS coordinate, an app on the on-board attendant’s smartphone signaled the station software to initiate the digital security screening program to ensure passengers could disembark safely. safety and that the train can depart for the next station on schedule. However, many places such as the tunnels have limited cell coverage. When this happens, the GPS position of the train can appear up to 10 kilometers from the station, thwarting the entire security check process.

Read on to find out more.

Transmit Security Announces Expanded CIAM Capabilities and Record Growth

transmission security announced key new features for its Customer Identity and Access Management (CIAM) platform, along with key milestones and record customer and revenue growth for the first half of 2022. The company has also rebranded its identity products, reflecting the shift to a developer-friendly approach to providing secure identity services as APIs. Since June 2021, when the company announced the largest Series A funding round in cybersecurity history, Transmit Security has grown revenue by 40% in the first half year-over-year, expanded its 41% employee base, grew its customer base by 51% and surpassed $100. million in annual recurring revenue (ARR). The company added clients such as Goldman Sachs, BRED Banque Populaire and America’s Car-Mart to a list that already included industry leaders like Citigroup, Lowe’s, UBS, Santander and HSBC. In March, Transmit Security was honored by Fast Company as one of the “10 Most Innovative Security Companies” for 2022.

Read on to find out more.

To be taken into account in the next news, send your announcements to [email protected].

mike costello
Latest posts from Mike Costello (see everything)

Comments are closed.